XISEM Browser Telemetry (Active Tab) - Hotfix 3

XISEM Browser Telemetry & Anti-Venom Protection is a sophisticated browser extension designed to enhance security and telemetry visibility for both organizations and individual users. Tailored primarily for enterprise environments, XISEM provides detailed, privacy-conscious reporting on active browser tabs while delivering advanced protection against phishing, impersonation, and unsafe websites. This extension focuses on reporting minimal metadata—only the active tab’s URL and title—without collecting sensitive personal data such as page content, keystrokes, cookies, clipboard data, or screenshots. By doing so, it enables managed environments to monitor browser usage, productivity, and endpoint exposure without infringing on user privacy.

A signature feature of XISEM is its unique “Anti-Venom” official-site watermarking capability. When users visit officially verified HTTPS domains (typically enterprise or recognized authority sites), the extension visually marks these pages by overlaying a tiled watermark on light backgrounds that includes the user’s email address and the extension icon. This watermark confirms the site’s authenticity, thwarting phishing attempts and web impersonation attacks by making it significantly harder for malicious or lookalike sites to mimic trusted domains. Organizations can customize which domains receive this protection, ensuring that only designated, recognized sites are marked.

XISEM continuously checks visited domains against customizable organization policies and trusted domain lists. Sites are classified into clear security states—official/safe, warning, or blocked—allowing users to quickly understand the security posture of their browsing sessions. For suspicious or blocked destinations, the extension displays full-screen alerts or warning banners, keeping users informed and protected in real time. It also incorporates a short HTTPS-upgrade grace period to minimize false warnings during browser redirects, improving user experience without compromising security.

In addition to telemetry and site protection, XISEM features rich configuration options for enterprise management. Administrators can centrally manage settings such as API endpoint configurations, authentication tokens, tenant IDs, domain whitelisting/blacklisting, and telemetry exclusions via managed policies. The extension supports secure data uploads to external endpoints, including native messaging integration with platforms like Microsoft Graph and custom APIs. Users are kept aware of the extension’s status through notification banners that indicate when protection is active, if telemetry uploads are disabled, or when endpoint agents are unreachable.

The extension also supports reporting to the DualStrike agent API—a companion service used by endpoint and tray dashboards—to provide insight into extension health and site filtering status over rolling 24-hour periods, categorized as green, yellow, or red. This adds a layer of security awareness and operational oversight for organizations aiming to enforce security policies and monitor browser risk posture effectively. XISEM’s intuitive options page allows both users and administrators to tailor telemetry settings, domain exclusions, Anti-Venom watermark rules, and privacy-conscious modes such as incognito exclusions.

Key Features: